Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
File: XpgU1DFdMK28jeMGAFVq6cPPns4.mft (raw, json)
Hash identifier: p+2wWv/vCcVjYyeL8UFkEb+iAshu0CoLT/GoEsn3T68=
Subject key identifier: 5F:EC:3E:D8:AE:7C:D4:F5:99:C3:1E:BB:52:25:06:AE:19:4A:01:B5
Authority key identifier: 5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
Certificate issuer: /CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Certificate serial: 019E1F116BD69C32052C8182F2976AE9F899
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
Manifest number: 1908
Signing time: Wed 13 May 2026 02:01:35 +0000
Manifest this update: Wed 13 May 2026 02:01:35 +0000
Manifest next update: Thu 14 May 2026 02:01:35 +0000
Files and hashes: 1: QBinzFbTX8ICJKPb335BTjaNXKk.roa (hash: phGs/IfWO4O9NiG9zthPXCYOMupHdBQa3yN7pRaGe2k=)
2: XpgU1DFdMK28jeMGAFVq6cPPns4.crl (hash: l8boRZ8AZ/fODvT2P9a2IQH573sJoK66sIJZHRV0BO4=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Thu 14 May 2026 02:01:35 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9e:1f:11:6b:d6:9c:32:05:2c:81:82:f2:97:6a:e9:f8:99
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5e9814d4315d30adbc8de30600556ae9c3cf9ece
Validity
Not Before: May 13 02:01:35 2026 GMT
Not After : May 14 02:01:35 2026 GMT
Subject: CN=5fec3ed8ae7cd4f599c31ebb522506ae194a01b5
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c2:b4:6f:ad:7a:05:6f:6b:1b:e2:ad:7b:9e:b8:
f8:80:5a:72:ac:91:56:b3:4d:e2:84:2f:ff:49:36:
d1:9c:45:0d:f4:f6:c7:df:ab:33:dd:85:54:bc:a2:
9a:7e:8c:0b:14:54:8f:60:9a:e9:1d:dc:7c:05:a3:
34:f6:60:f8:2f:bd:3f:5c:2d:93:65:fc:f7:6c:13:
47:af:7f:44:ec:47:3c:f4:99:19:5f:9c:d5:a7:d1:
3a:8a:88:bd:fe:aa:7d:16:02:b3:c3:1d:f9:fe:ae:
50:ba:1f:81:81:dc:06:f9:b3:89:47:48:12:e4:58:
e5:3e:ff:c6:81:e7:a5:ab:b2:03:77:9a:60:77:d5:
0b:9e:0e:f0:f7:9c:9e:56:66:6c:a2:40:1f:b3:b1:
19:5c:06:5c:b7:2f:c2:37:e9:c0:f2:2f:ed:37:5c:
5b:cb:a3:92:61:9e:8e:97:9b:57:e1:82:2b:5d:52:
75:70:04:9c:57:8e:93:09:68:0d:f3:95:07:6d:02:
5f:a7:3c:45:46:67:4b:b5:80:76:ba:eb:8f:0a:b7:
d7:d4:79:e5:0e:6b:c5:26:53:cb:e9:a8:2d:68:03:
cc:81:59:f8:a4:c1:24:d2:cc:ea:aa:20:05:82:d9:
45:d2:41:96:d4:b0:78:da:37:fb:8b:e9:d4:b1:37:
48:49
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5F:EC:3E:D8:AE:7C:D4:F5:99:C3:1E:BB:52:25:06:AE:19:4A:01:B5
X509v3 Authority Key Identifier:
keyid:5E:98:14:D4:31:5D:30:AD:BC:8D:E3:06:00:55:6A:E9:C3:CF:9E:CE
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/XpgU1DFdMK28jeMGAFVq6cPPns4.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/7a78d4-0340-4227-b147-35b53d2376d2/1/XpgU1DFdMK28jeMGAFVq6cPPns4.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
b9:d6:78:03:62:18:b2:4f:64:aa:6f:cf:cd:a9:3c:ad:c3:78:
4e:ea:e5:9b:63:5a:41:26:c4:4f:c4:f1:f7:18:2b:a0:c9:7b:
5d:7f:f6:2d:2a:d0:df:f1:fd:06:c4:6e:6d:30:ab:cf:38:40:
b3:e0:c3:c7:ae:0a:e1:08:98:55:f5:14:87:4e:82:24:82:44:
3e:96:d8:c6:b4:ee:fa:41:a3:12:27:73:dd:b6:fb:52:f3:c5:
e9:e2:49:4b:ca:57:96:93:57:7c:69:b4:27:bd:7a:7d:76:2c:
a7:58:a2:66:25:bc:bf:da:b9:e8:0e:93:89:76:d1:ea:15:62:
28:a1:5f:a5:e8:af:76:d4:9d:27:19:59:ae:28:7a:d8:bf:ab:
2c:81:ba:b5:ee:ad:5d:99:60:e5:27:41:dc:62:cf:e7:ab:0c:
ea:a1:3d:b2:6e:86:78:8d:e3:63:a1:4d:e4:f0:dd:08:cf:52:
d4:f9:5c:42:ae:4a:a6:3d:c0:89:41:58:7d:52:25:16:1d:be:
66:12:a0:43:e7:f3:b9:14:1b:bc:68:4e:5f:bb:aa:0e:0b:7b:
ab:f4:1f:0c:03:fa:3c:61:8d:d1:1a:32:87:1a:9a:3a:fe:20:
33:ae:e4:1e:76:6d:18:c2:81:e0:c9:42:6d:85:8e:4c:43:d6:
56:40:dd:f2
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed May 13 11:07:10 2026 by rpki-client